Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b1/f4827b-3d1d-4acb-a773-cb168afdb343/1/md-xwm__B4DuEU6pm7iOIgn0omY.roa
File: md-xwm__B4DuEU6pm7iOIgn0omY.roa (raw, json)
Hash identifier: 4UeEEPTc0wYxpvZ2aKir2Q32tya518lyZVoVXjRWG48=
Subject key identifier: 99:DF:B1:C2:6F:FF:07:80:EE:11:4E:A9:9B:B8:8E:22:09:F4:A2:66
Certificate issuer: /CN=5867ac6985cc0b3fea216945c92eb2e932189403
Certificate serial: 018936BB482486B40122AB24FE10C5BEFBFD
Authority key identifier: 58:67:AC:69:85:CC:0B:3F:EA:21:69:45:C9:2E:B2:E9:32:18:94:03
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WGesaYXMCz_qIWlFyS6y6TIYlAM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b1/f4827b-3d1d-4acb-a773-cb168afdb343/1/md-xwm__B4DuEU6pm7iOIgn0omY.roa
Signing time: Sat 08 Jul 2023 18:19:50 +0000
ROA not before: Sat 08 Jul 2023 18:19:50 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 15830
IP address blocks: 178.211.142.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:36:bb:48:24:86:b4:01:22:ab:24:fe:10:c5:be:fb:fd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5867ac6985cc0b3fea216945c92eb2e932189403
Validity
Not Before: Jul 8 18:19:50 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=99dfb1c26fff0780ee114ea99bb88e2209f4a266
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:fc:9a:47:21:81:1e:9d:20:dc:4e:fa:e0:9e:
87:03:35:07:ae:f6:b9:fd:4c:a9:59:68:e1:65:97:
4a:d2:b8:1d:d5:ee:48:94:f9:c7:17:50:30:2f:81:
64:13:ea:23:31:28:9f:98:b1:37:e7:0f:25:c3:39:
8f:51:8d:89:a7:b0:01:87:3c:3e:ee:70:33:78:cf:
cf:c4:48:61:db:3a:94:e9:7d:59:dd:9c:7a:95:cc:
a1:ff:54:73:34:92:e3:5d:f9:d0:7a:3c:eb:ea:92:
b9:6e:2f:15:30:a1:49:a5:7e:bf:f0:8e:16:75:f4:
ae:1d:73:28:21:2a:fd:59:c8:74:eb:51:3b:7e:0e:
1c:8a:fd:21:95:4b:a1:12:5c:b3:6c:e7:ea:af:fa:
65:09:b1:56:b8:ee:d2:b6:9b:57:3b:d3:f8:9e:8a:
3b:87:e5:5a:72:4f:db:bc:d8:cd:56:d9:40:26:04:
97:ff:12:d9:51:18:b0:81:a6:db:63:d6:83:13:48:
75:c2:75:9e:d6:bf:7f:ab:54:63:11:2f:09:f2:8d:
cc:ff:d1:b0:17:10:2a:59:aa:d5:ec:05:0c:f3:5c:
46:df:24:fa:36:07:23:79:22:dd:2c:62:4b:61:e4:
08:4b:42:e9:1d:64:ee:ab:6a:21:aa:7c:c0:b2:1b:
f0:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
99:DF:B1:C2:6F:FF:07:80:EE:11:4E:A9:9B:B8:8E:22:09:F4:A2:66
X509v3 Authority Key Identifier:
keyid:58:67:AC:69:85:CC:0B:3F:EA:21:69:45:C9:2E:B2:E9:32:18:94:03
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WGesaYXMCz_qIWlFyS6y6TIYlAM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/f4827b-3d1d-4acb-a773-cb168afdb343/1/md-xwm__B4DuEU6pm7iOIgn0omY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/f4827b-3d1d-4acb-a773-cb168afdb343/1/WGesaYXMCz_qIWlFyS6y6TIYlAM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
178.211.142.0/24
Signature Algorithm: sha256WithRSAEncryption
16:2d:38:4a:0f:10:5d:db:eb:c7:e7:be:68:52:44:97:62:68:
f8:95:44:e2:09:9b:8b:b9:06:3e:31:fc:18:49:15:c7:88:08:
ee:f0:64:39:d8:30:21:28:38:1c:5f:12:20:2e:df:c0:f4:a9:
44:17:34:3f:11:6c:bc:b6:bc:bc:6e:8e:bd:7c:c3:2f:72:2a:
f5:1b:fd:12:ba:c6:59:0c:bf:82:3f:82:ec:97:0e:2b:4d:ea:
b0:78:9a:bb:4e:40:8b:b2:5b:43:89:8a:90:d0:a2:2e:5e:b5:
01:a7:d4:c0:5a:df:dc:f1:63:36:87:aa:38:53:5d:d2:df:f3:
ab:58:18:71:bf:71:e7:0d:a1:f6:eb:c7:84:85:3a:44:90:38:
5f:a3:7c:11:34:5c:f8:6b:a2:12:a5:87:38:ef:77:fa:da:9e:
c9:d6:f8:97:43:25:71:c5:a8:64:ae:fd:bf:49:e3:dd:f9:8c:
50:1e:f7:d3:87:9f:8b:c4:7f:e6:d8:08:b9:08:22:42:e7:9b:
3c:76:b4:15:7d:a8:6b:4e:f6:67:71:20:7c:0a:20:b8:84:74:
35:19:af:92:bb:a4:ce:7b:72:90:35:5d:78:ec:fc:36:10:8b:
4a:94:d0:b7:66:8a:55:6a:a9:76:cd:dd:54:b9:cf:13:3c:e1:
b5:2d:7e:d8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 11:52:32 2024 by rpki-client on console-fra.rpki-client.org